Bug#245044: xdm can't resolve hostnames from Xaccess Indirect lines; upstream fix available

To: submit@bugs.debian.org
Subject: Bug#245044: xdm can't resolve hostnames from Xaccess Indirect lines; upstream fix available
From: Enrik Berkhan <Enrik.Berkhan@akk.org>
Date: Wed, 21 Apr 2004 09:23:15 +0200
Message-id: <[🔎] 20040421072315.GA22985@akk10.akk.uni-karlsruhe.de>
Reply-to: Enrik Berkhan <Enrik.Berkhan@akk.org>, 245044@bugs.debian.org

Package: xdm
Version: 4.3.0-7
Severity: important

Hi,

xdm from unstable (version 4.3.0-7) has a bug that prevents hostnames
in Xaccess Indirect entries to be resolved correctly. The reason is that
the result from gethostbyname() is dereferenced incorectly. The Bug has
already been fixed upstream. Thus, a possible patch can be found in the
xfree86 CVS:

http://cvsweb.xfree86.org/cvsweb/xc/programs/xdm/access.c.diff?r2=3.14&r1=3.13&diff_format=u

(This might still have a possible buffer overflow if gethostbyname
returns an IPv6 address ... ;-(

To reproduce the bug, enter something like the following into Xacces:

--- cut ---
* CHOOSER some.other.host
--- cut ---

and watch chooser's arguments using ps. The last argument should be
some.other.host's IP.

Enrik

Reply to:

Follow-Ups:
- Bug#245044: xdm can't resolve hostnames from Xaccess Indirect lines; upstream fix available
  - From: Branden Robinson <branden@debian.org>

Prev by Date: Processed: severity of 72046 is important
Next by Date: Bug#43216: marked as done (libx11-6: SEGV when running xblast)
Previous by thread: Processed: severity of 72046 is important
Next by thread: Bug#245044: xdm can't resolve hostnames from Xaccess Indirect lines; upstream fix available
Index(es):
- Date
- Thread